| Summary: | python-lxml new security issue CVE-2022-2309 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | David Walser <luigiwalser> |
| Component: | Security | Assignee: | QA Team <qa-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | Sec team <security> |
| Severity: | normal | ||
| Priority: | Normal | CC: | andrewsfarm, davidwhodgins, sysadmin-bugs, yvesbrungard |
| Version: | 8 | Keywords: | advisory, validated_update |
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | MGA8-64-OK | ||
| Source RPM: | python-lxml-4.7.1-3.mga9.src.rpm | CVE: | |
| Status comment: | |||
|
Description
David Walser
2022-08-24 21:34:38 CEST
David Walser
2022-08-24 21:34:52 CEST
Whiteboard:
(none) =>
MGA8TOO Assigning to the Python maintainers. Assignee:
bugsquad =>
python In testings: python3-lxml-4.9.1-1.mga8 python-lxml-docs-4.9.1-1.mga8 Assignee:
python =>
qa-bugs No installation issues. Referenced Bug 29817 Comment 4 for testing. $ strace -o lxmltxt calibre Imported an html file from "Grokking the Gimp," downloaded years ago. Converted it to epub format, which I was able to read with the Calibre viewer and with CoolReader3. (Probably not the best format for this document, as the result was 859 pages long in CoolReader3, but it was entirely readable.) There were numerous references in the strace text file to /usr/lib64/python3.8/site-packages/lxml/ files, so OK for me just as it was for Herman. Validating. Whiteboard:
(none) =>
MGA8-64-OK
Dave Hodgins
2022-09-16 19:54:14 CEST
CC:
(none) =>
davidwhodgins An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0331.html Status:
NEW =>
RESOLVED |